Booz Allen Hamilton Leaves Pentagon Files On Open Amazon Server

A US defence contractor could be in serious trouble after it emerged that it had left sensitive government information related to an American military project on an unprotected server.

The contractor in question is Booz Allen Hamilton, and it reportedly left more than 60,000 files, including security credentials and passwords to a government system containing sensitive information, on a publicly accessible Amazon server.

And to make matters worse, the data was not even protected by a password.

Sloppy Contractor

It was a contractor at Booz Allen Hamilton that left nearly 28GB of data exposed, which included top secret geospatial intelligence and unencrypted passwords belonging to contractors with Top Secret Facility Clearance.

The concern, reported Gizmodo, is that these credentials could be used to gain access to additional sensitive government data.

The leaked data included references to the US National Geospatial-Intelligence Agency (NGA), which act as “mapmakers” for the Pentagon.

The NGA also regularly works with the CIA, National Reconnaissance Office and the Defense Intelligence Agency, and it confirmed the leak to Gizmodo but stressed that no classified information had been disclosed.

“NGA takes the potential disclosure of sensitive but unclassified information seriously and immediately revoked the affected credentials,” an agency spokesperson was quoted as saying. And it seems that the Amazon server from which the data was leaked was “not directly connected to classified networks,” the spokesperson noted.

The discovery that the sensitive data had been left on the unprotected server was revealed by cyber risk analyst Chris Vickery of cyber resilience platform UpGuard.

Vickery revealed that the data also included battlefield imaging in Afghanistan, as well as satellite surveillance of North Korea’s ballistic missile arsenal.

And it seem that after Vickery received no response from Booz Allen Hamilton after he notified them, he contacted the NGA directly, who reacted within 9 minutes to secure the files, “an impressively speedy response time from a major US intelligence agency.”

The analyst noted that Edward Snowden was a former analyst at Booz Allen Hamilton.

Defence Leaks

This is not the first time that sensitive US military data has been leaked. In March thousands of confidential US Air Force documents were exposed online in a mass military leak through an unsecured internet-connected backup drive belonging to a lieutenant colonel.

Prior to that Wikileaks this year published thousands of classified documents belonging to the Central Intelligence Agency (CIA).

The documents exposed the hacking tools used by the CIA to access smartphones, computers and even smart televisions.

Quiz: Are you a security guru?

Tom Jowitt

Tom Jowitt is a leading British tech freelancer and long standing contributor to Silicon UK. He is also a bit of a Lord of the Rings nut...

Recent Posts

Brazil Demands Clarity After Meta Ends Fact-Checking

Brazil demands specifics on how new Meta stance on misinformation will apply to country amidst…

7 hours ago

US Executive Order Aims To Shore Up Cyber-Defences

Order from outgoing Joe Biden administration aims to respond to multiple hacks by China targeting…

8 hours ago

Amazon, Meta End Diversity Initiatives

Amazon, Meta end diversity and inclusion initiatives as tech firms re-align policies with those of…

8 hours ago

TSMC Cuts Off Singapore Company Amidst Huawei Fallout

TSMC cuts off Singapore-based PowerAIR as it investigates chip it produced appearing in AI accelerator…

9 hours ago

Huawei Next-Gen OS Gets Boost With Tencent’s WeChat

Tencent's super-app WeChat launches on Huawei's HarmonyOS Next platform in major boost to company's Android…

9 hours ago

Apple Creates Data-Processing Company In Shanghai

Apple forms data-processing venture in Shanghai amidst ongoing efforts to introduce AI offerings in mainland…

10 hours ago